Django REST framework

Package Instance

Lookup for vulnerable packages by Package URL.

Purlpkg:apk/alpine/firefox@102.0-r0?arch=loongarch64&distroversion=v3.21&reponame=community
Typeapk
Namespacealpine
Namefirefox
Version102.0-r0
Qualifiers
arch loongarch64
distroversion v3.21
reponame community
Subpath
Is_vulnerablefalse
Next_non_vulnerable_version103.0-r0
Latest_non_vulnerable_version119.0-r0
Affected_by_vulnerabilities
Fixing_vulnerabilities
0
url VCID-1nmu-sdab-2yhh
vulnerability_id VCID-1nmu-sdab-2yhh
summary If an object prototype was corrupted by an attacker, they would have been able to set undesired attributes on a JavaScript object, leading to privileged code execution.
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-2200.json
reference_id
reference_type
scores
0
value 8.8
scoring_system cvssv3
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-2200.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2022-2200
reference_id
reference_type
scores
0
value 0.06199
scoring_system epss
scoring_elements 0.91036
published_at 2026-06-05T12:55:00Z
1
value 0.06199
scoring_system epss
scoring_elements 0.91022
published_at 2026-06-04T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2022-2200
2
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2200
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2200
3
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2226
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2226
4
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-31744
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-31744
5
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-34468
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-34468
6
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-34470
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-34470
7
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-34472
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-34472
8
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-34479
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-34479
9
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-34481
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-34481
10
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-34484
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-34484
11
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=2102168
reference_id 2102168
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=2102168
12
reference_url https://www.mozilla.org/en-US/security/advisories/mfsa2022-24
reference_id mfsa2022-24
reference_type
scores
0
value high
scoring_system generic_textual
scoring_elements
url https://www.mozilla.org/en-US/security/advisories/mfsa2022-24
13
reference_url https://www.mozilla.org/security/advisories/mfsa2022-24/
reference_id mfsa2022-24
reference_type
scores
0
value 8.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-04-15T15:02:52Z/
url https://www.mozilla.org/security/advisories/mfsa2022-24/
14
reference_url https://www.mozilla.org/en-US/security/advisories/mfsa2022-25
reference_id mfsa2022-25
reference_type
scores
0
value high
scoring_system generic_textual
scoring_elements
url https://www.mozilla.org/en-US/security/advisories/mfsa2022-25
15
reference_url https://www.mozilla.org/security/advisories/mfsa2022-25/
reference_id mfsa2022-25
reference_type
scores
0
value 8.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-04-15T15:02:52Z/
url https://www.mozilla.org/security/advisories/mfsa2022-25/
16
reference_url https://www.mozilla.org/en-US/security/advisories/mfsa2022-26
reference_id mfsa2022-26
reference_type
scores
0
value high
scoring_system generic_textual
scoring_elements
url https://www.mozilla.org/en-US/security/advisories/mfsa2022-26
17
reference_url https://www.mozilla.org/security/advisories/mfsa2022-26/
reference_id mfsa2022-26
reference_type
scores
0
value 8.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-04-15T15:02:52Z/
url https://www.mozilla.org/security/advisories/mfsa2022-26/
18
reference_url https://access.redhat.com/errata/RHSA-2022:5469
reference_id RHSA-2022:5469
reference_type
scores
url https://access.redhat.com/errata/RHSA-2022:5469
19
reference_url https://access.redhat.com/errata/RHSA-2022:5470
reference_id RHSA-2022:5470
reference_type
scores
url https://access.redhat.com/errata/RHSA-2022:5470
20
reference_url https://access.redhat.com/errata/RHSA-2022:5472
reference_id RHSA-2022:5472
reference_type
scores
url https://access.redhat.com/errata/RHSA-2022:5472
21
reference_url https://access.redhat.com/errata/RHSA-2022:5473
reference_id RHSA-2022:5473
reference_type
scores
url https://access.redhat.com/errata/RHSA-2022:5473
22
reference_url https://access.redhat.com/errata/RHSA-2022:5474
reference_id RHSA-2022:5474
reference_type
scores
url https://access.redhat.com/errata/RHSA-2022:5474
23
reference_url https://access.redhat.com/errata/RHSA-2022:5475
reference_id RHSA-2022:5475
reference_type
scores
url https://access.redhat.com/errata/RHSA-2022:5475
24
reference_url https://access.redhat.com/errata/RHSA-2022:5477
reference_id RHSA-2022:5477
reference_type
scores
url https://access.redhat.com/errata/RHSA-2022:5477
25
reference_url https://access.redhat.com/errata/RHSA-2022:5478
reference_id RHSA-2022:5478
reference_type
scores
url https://access.redhat.com/errata/RHSA-2022:5478
26
reference_url https://access.redhat.com/errata/RHSA-2022:5479
reference_id RHSA-2022:5479
reference_type
scores
url https://access.redhat.com/errata/RHSA-2022:5479
27
reference_url https://access.redhat.com/errata/RHSA-2022:5480
reference_id RHSA-2022:5480
reference_type
scores
url https://access.redhat.com/errata/RHSA-2022:5480
28
reference_url https://access.redhat.com/errata/RHSA-2022:5481
reference_id RHSA-2022:5481
reference_type
scores
url https://access.redhat.com/errata/RHSA-2022:5481
29
reference_url https://access.redhat.com/errata/RHSA-2022:5482
reference_id RHSA-2022:5482
reference_type
scores
url https://access.redhat.com/errata/RHSA-2022:5482
30
reference_url https://bugzilla.mozilla.org/show_bug.cgi?id=1771381
reference_id show_bug.cgi?id=1771381
reference_type
scores
0
value 8.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-04-15T15:02:52Z/
url https://bugzilla.mozilla.org/show_bug.cgi?id=1771381
31
reference_url https://usn.ubuntu.com/5504-1/
reference_id USN-5504-1
reference_type
scores
url https://usn.ubuntu.com/5504-1/
32
reference_url https://usn.ubuntu.com/5512-1/
reference_id USN-5512-1
reference_type
scores
url https://usn.ubuntu.com/5512-1/
fixed_packages
0
url pkg:apk/alpine/firefox@102.0-r0?arch=loongarch64&distroversion=v3.21&reponame=community
purl pkg:apk/alpine/firefox@102.0-r0?arch=loongarch64&distroversion=v3.21&reponame=community
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:apk/alpine/firefox@102.0-r0%3Farch=loongarch64&distroversion=v3.21&reponame=community
aliases CVE-2022-2200
risk_score 4.0
exploitability 0.5
weighted_severity 8.0
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-1nmu-sdab-2yhh
1
url VCID-4kd4-g5ht-sygp
vulnerability_id VCID-4kd4-g5ht-sygp
summary An attacker who could have convinced a user to drag and drop an image to a filesystem could have manipulated the resulting filename to contain an executable extension, and by extension potentially tricked the user into executing malicious code. While very similar, this is a separate issue from CVE-2022-34483.
references
0
reference_url https://api.first.org/data/v1/epss?cve=CVE-2022-34482
reference_id
reference_type
scores
0
value 0.0048
scoring_system epss
scoring_elements 0.65465
published_at 2026-06-05T12:55:00Z
1
value 0.0048
scoring_system epss
scoring_elements 0.65414
published_at 2026-06-04T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2022-34482
1
reference_url https://www.mozilla.org/en-US/security/advisories/mfsa2022-24
reference_id mfsa2022-24
reference_type
scores
0
value high
scoring_system generic_textual
scoring_elements
url https://www.mozilla.org/en-US/security/advisories/mfsa2022-24
2
reference_url https://www.mozilla.org/security/advisories/mfsa2022-24/
reference_id mfsa2022-24
reference_type
scores
0
value 8.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
1
value Track*
scoring_system ssvc
scoring_elements SSVCv2/E:P/A:N/T:T/P:M/B:A/M:M/D:R/2025-04-15T17:51:21Z/
url https://www.mozilla.org/security/advisories/mfsa2022-24/
3
reference_url https://bugzilla.mozilla.org/show_bug.cgi?id=845880
reference_id show_bug.cgi?id=845880
reference_type
scores
0
value 8.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
1
value Track*
scoring_system ssvc
scoring_elements SSVCv2/E:P/A:N/T:T/P:M/B:A/M:M/D:R/2025-04-15T17:51:21Z/
url https://bugzilla.mozilla.org/show_bug.cgi?id=845880
4
reference_url https://usn.ubuntu.com/5504-1/
reference_id USN-5504-1
reference_type
scores
url https://usn.ubuntu.com/5504-1/
fixed_packages
0
url pkg:apk/alpine/firefox@102.0-r0?arch=loongarch64&distroversion=v3.21&reponame=community
purl pkg:apk/alpine/firefox@102.0-r0?arch=loongarch64&distroversion=v3.21&reponame=community
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:apk/alpine/firefox@102.0-r0%3Farch=loongarch64&distroversion=v3.21&reponame=community
aliases CVE-2022-34482
risk_score null
exploitability null
weighted_severity null
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-4kd4-g5ht-sygp
2
url VCID-6yc1-jutk-1fcz
vulnerability_id VCID-6yc1-jutk-1fcz
summary Session history navigations may have led to a use-after-free and potentially exploitable crash.
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-34470.json
reference_id
reference_type
scores
0
value 9.8
scoring_system cvssv3
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-34470.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2022-34470
reference_id
reference_type
scores
0
value 0.00645
scoring_system epss
scoring_elements 0.71118
published_at 2026-06-05T12:55:00Z
1
value 0.00645
scoring_system epss
scoring_elements 0.71076
published_at 2026-06-04T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2022-34470
2
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2200
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2200
3
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2226
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2226
4
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-31744
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-31744
5
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-34468
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-34468
6
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-34470
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-34470
7
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-34472
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-34472
8
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-34479
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-34479
9
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-34481
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-34481
10
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-34484
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-34484
11
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=2102162
reference_id 2102162
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=2102162
12
reference_url https://www.mozilla.org/en-US/security/advisories/mfsa2022-24
reference_id mfsa2022-24
reference_type
scores
0
value high
scoring_system generic_textual
scoring_elements
url https://www.mozilla.org/en-US/security/advisories/mfsa2022-24
13
reference_url https://www.mozilla.org/security/advisories/mfsa2022-24/
reference_id mfsa2022-24
reference_type
scores
0
value 9.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
1
value Track*
scoring_system ssvc
scoring_elements SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2025-04-15T18:51:07Z/
url https://www.mozilla.org/security/advisories/mfsa2022-24/
14
reference_url https://www.mozilla.org/en-US/security/advisories/mfsa2022-25
reference_id mfsa2022-25
reference_type
scores
0
value high
scoring_system generic_textual
scoring_elements
url https://www.mozilla.org/en-US/security/advisories/mfsa2022-25
15
reference_url https://www.mozilla.org/security/advisories/mfsa2022-25/
reference_id mfsa2022-25
reference_type
scores
0
value 9.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
1
value Track*
scoring_system ssvc
scoring_elements SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2025-04-15T18:51:07Z/
url https://www.mozilla.org/security/advisories/mfsa2022-25/
16
reference_url https://www.mozilla.org/en-US/security/advisories/mfsa2022-26
reference_id mfsa2022-26
reference_type
scores
0
value high
scoring_system generic_textual
scoring_elements
url https://www.mozilla.org/en-US/security/advisories/mfsa2022-26
17
reference_url https://www.mozilla.org/security/advisories/mfsa2022-26/
reference_id mfsa2022-26
reference_type
scores
0
value 9.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
1
value Track*
scoring_system ssvc
scoring_elements SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2025-04-15T18:51:07Z/
url https://www.mozilla.org/security/advisories/mfsa2022-26/
18
reference_url https://access.redhat.com/errata/RHSA-2022:5469
reference_id RHSA-2022:5469
reference_type
scores
url https://access.redhat.com/errata/RHSA-2022:5469
19
reference_url https://access.redhat.com/errata/RHSA-2022:5470
reference_id RHSA-2022:5470
reference_type
scores
url https://access.redhat.com/errata/RHSA-2022:5470
20
reference_url https://access.redhat.com/errata/RHSA-2022:5472
reference_id RHSA-2022:5472
reference_type
scores
url https://access.redhat.com/errata/RHSA-2022:5472
21
reference_url https://access.redhat.com/errata/RHSA-2022:5473
reference_id RHSA-2022:5473
reference_type
scores
url https://access.redhat.com/errata/RHSA-2022:5473
22
reference_url https://access.redhat.com/errata/RHSA-2022:5474
reference_id RHSA-2022:5474
reference_type
scores
url https://access.redhat.com/errata/RHSA-2022:5474
23
reference_url https://access.redhat.com/errata/RHSA-2022:5475
reference_id RHSA-2022:5475
reference_type
scores
url https://access.redhat.com/errata/RHSA-2022:5475
24
reference_url https://access.redhat.com/errata/RHSA-2022:5477
reference_id RHSA-2022:5477
reference_type
scores
url https://access.redhat.com/errata/RHSA-2022:5477
25
reference_url https://access.redhat.com/errata/RHSA-2022:5478
reference_id RHSA-2022:5478
reference_type
scores
url https://access.redhat.com/errata/RHSA-2022:5478
26
reference_url https://access.redhat.com/errata/RHSA-2022:5479
reference_id RHSA-2022:5479
reference_type
scores
url https://access.redhat.com/errata/RHSA-2022:5479
27
reference_url https://access.redhat.com/errata/RHSA-2022:5480
reference_id RHSA-2022:5480
reference_type
scores
url https://access.redhat.com/errata/RHSA-2022:5480
28
reference_url https://access.redhat.com/errata/RHSA-2022:5481
reference_id RHSA-2022:5481
reference_type
scores
url https://access.redhat.com/errata/RHSA-2022:5481
29
reference_url https://access.redhat.com/errata/RHSA-2022:5482
reference_id RHSA-2022:5482
reference_type
scores
url https://access.redhat.com/errata/RHSA-2022:5482
30
reference_url https://bugzilla.mozilla.org/show_bug.cgi?id=1765951
reference_id show_bug.cgi?id=1765951
reference_type
scores
0
value 9.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
1
value Track*
scoring_system ssvc
scoring_elements SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2025-04-15T18:51:07Z/
url https://bugzilla.mozilla.org/show_bug.cgi?id=1765951
31
reference_url https://usn.ubuntu.com/5504-1/
reference_id USN-5504-1
reference_type
scores
url https://usn.ubuntu.com/5504-1/
32
reference_url https://usn.ubuntu.com/5512-1/
reference_id USN-5512-1
reference_type
scores
url https://usn.ubuntu.com/5512-1/
fixed_packages
0
url pkg:apk/alpine/firefox@102.0-r0?arch=loongarch64&distroversion=v3.21&reponame=community
purl pkg:apk/alpine/firefox@102.0-r0?arch=loongarch64&distroversion=v3.21&reponame=community
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:apk/alpine/firefox@102.0-r0%3Farch=loongarch64&distroversion=v3.21&reponame=community
aliases CVE-2022-34470
risk_score 4.4
exploitability 0.5
weighted_severity 8.8
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-6yc1-jutk-1fcz
3
url VCID-b4s7-kmmt-g7gv
vulnerability_id VCID-b4s7-kmmt-g7gv
summary The HTML Sanitizer should have sanitized the href attribute of SVG <use> tags; however it incorrectly did not sanitize xlink:href attributes.
references
0
reference_url https://api.first.org/data/v1/epss?cve=CVE-2022-34473
reference_id
reference_type
scores
0
value 0.00439
scoring_system epss
scoring_elements 0.63511
published_at 2026-06-05T12:55:00Z
1
value 0.00439
scoring_system epss
scoring_elements 0.63468
published_at 2026-06-04T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2022-34473
1
reference_url https://www.mozilla.org/en-US/security/advisories/mfsa2022-24
reference_id mfsa2022-24
reference_type
scores
0
value high
scoring_system generic_textual
scoring_elements
url https://www.mozilla.org/en-US/security/advisories/mfsa2022-24
2
reference_url https://www.mozilla.org/security/advisories/mfsa2022-24/
reference_id mfsa2022-24
reference_type
scores
0
value 6.1
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-15T19:32:28Z/
url https://www.mozilla.org/security/advisories/mfsa2022-24/
3
reference_url https://bugzilla.mozilla.org/show_bug.cgi?id=1770888
reference_id show_bug.cgi?id=1770888
reference_type
scores
0
value 6.1
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-15T19:32:28Z/
url https://bugzilla.mozilla.org/show_bug.cgi?id=1770888
4
reference_url https://usn.ubuntu.com/5504-1/
reference_id USN-5504-1
reference_type
scores
url https://usn.ubuntu.com/5504-1/
fixed_packages
0
url pkg:apk/alpine/firefox@102.0-r0?arch=loongarch64&distroversion=v3.21&reponame=community
purl pkg:apk/alpine/firefox@102.0-r0?arch=loongarch64&distroversion=v3.21&reponame=community
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:apk/alpine/firefox@102.0-r0%3Farch=loongarch64&distroversion=v3.21&reponame=community
aliases CVE-2022-34473
risk_score null
exploitability null
weighted_severity null
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-b4s7-kmmt-g7gv
4
url VCID-ew5u-u3zx-87cv
vulnerability_id VCID-ew5u-u3zx-87cv
summary When downloading an update for an addon, the downloaded addon update's version was not verified to match the version selected from the manifest. If the manifest had been tampered with on the server, an attacker could trick the browser into downgrading the addon to a prior version.
references
0
reference_url https://api.first.org/data/v1/epss?cve=CVE-2022-34471
reference_id
reference_type
scores
0
value 0.00108
scoring_system epss
scoring_elements 0.28679
published_at 2026-06-05T12:55:00Z
1
value 0.00108
scoring_system epss
scoring_elements 0.28606
published_at 2026-06-04T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2022-34471
1
reference_url https://www.mozilla.org/en-US/security/advisories/mfsa2022-24
reference_id mfsa2022-24
reference_type
scores
0
value high
scoring_system generic_textual
scoring_elements
url https://www.mozilla.org/en-US/security/advisories/mfsa2022-24
2
reference_url https://www.mozilla.org/security/advisories/mfsa2022-24/
reference_id mfsa2022-24
reference_type
scores
0
value 6.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-15T18:48:29Z/
url https://www.mozilla.org/security/advisories/mfsa2022-24/
3
reference_url https://bugzilla.mozilla.org/show_bug.cgi?id=1766047
reference_id show_bug.cgi?id=1766047
reference_type
scores
0
value 6.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-15T18:48:29Z/
url https://bugzilla.mozilla.org/show_bug.cgi?id=1766047
4
reference_url https://usn.ubuntu.com/5504-1/
reference_id USN-5504-1
reference_type
scores
url https://usn.ubuntu.com/5504-1/
fixed_packages
0
url pkg:apk/alpine/firefox@102.0-r0?arch=loongarch64&distroversion=v3.21&reponame=community
purl pkg:apk/alpine/firefox@102.0-r0?arch=loongarch64&distroversion=v3.21&reponame=community
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:apk/alpine/firefox@102.0-r0%3Farch=loongarch64&distroversion=v3.21&reponame=community
aliases CVE-2022-34471
risk_score null
exploitability null
weighted_severity null
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-ew5u-u3zx-87cv
5
url VCID-knjh-ah43-mycg
vulnerability_id VCID-knjh-ah43-mycg
summary Within the lg_init() function, if several allocations succeed but then one fails, an uninitialized pointer would have been freed despite never being allocated.
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-34480.json
reference_id
reference_type
scores
0
value 7.0
scoring_system cvssv3
scoring_elements CVSS:3.1/AV:L/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-34480.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2022-34480
reference_id
reference_type
scores
0
value 0.00399
scoring_system epss
scoring_elements 0.60972
published_at 2026-06-04T12:55:00Z
1
value 0.00399
scoring_system epss
scoring_elements 0.61021
published_at 2026-06-05T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2022-34480
2
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=2359028
reference_id 2359028
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=2359028
3
reference_url https://www.mozilla.org/en-US/security/advisories/mfsa2022-24
reference_id mfsa2022-24
reference_type
scores
0
value high
scoring_system generic_textual
scoring_elements
url https://www.mozilla.org/en-US/security/advisories/mfsa2022-24
4
reference_url https://www.mozilla.org/security/advisories/mfsa2022-24/
reference_id mfsa2022-24
reference_type
scores
0
value 8.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-04-15T17:54:01Z/
url https://www.mozilla.org/security/advisories/mfsa2022-24/
5
reference_url https://bugzilla.mozilla.org/show_bug.cgi?id=1454072
reference_id show_bug.cgi?id=1454072
reference_type
scores
0
value 8.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-04-15T17:54:01Z/
url https://bugzilla.mozilla.org/show_bug.cgi?id=1454072
6
reference_url https://usn.ubuntu.com/5504-1/
reference_id USN-5504-1
reference_type
scores
url https://usn.ubuntu.com/5504-1/
7
reference_url https://usn.ubuntu.com/5506-1/
reference_id USN-5506-1
reference_type
scores
url https://usn.ubuntu.com/5506-1/
8
reference_url https://usn.ubuntu.com/5872-1/
reference_id USN-5872-1
reference_type
scores
url https://usn.ubuntu.com/5872-1/
fixed_packages
0
url pkg:apk/alpine/firefox@102.0-r0?arch=loongarch64&distroversion=v3.21&reponame=community
purl pkg:apk/alpine/firefox@102.0-r0?arch=loongarch64&distroversion=v3.21&reponame=community
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:apk/alpine/firefox@102.0-r0%3Farch=loongarch64&distroversion=v3.21&reponame=community
aliases CVE-2022-34480
risk_score null
exploitability null
weighted_severity null
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-knjh-ah43-mycg
6
url VCID-vbs8-en1z-wkha
vulnerability_id VCID-vbs8-en1z-wkha
summary An attacker who could have convinced a user to drag and drop an image to a filesystem could have manipulated the resulting filename to contain an executable extension, and by extension potentially tricked the user into executing malicious code. While very similar, this is a separate issue from CVE-2022-34482.
references
0
reference_url https://api.first.org/data/v1/epss?cve=CVE-2022-34483
reference_id
reference_type
scores
0
value 0.00355
scoring_system epss
scoring_elements 0.58124
published_at 2026-06-05T12:55:00Z
1
value 0.00355
scoring_system epss
scoring_elements 0.58072
published_at 2026-06-04T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2022-34483
1
reference_url https://www.mozilla.org/en-US/security/advisories/mfsa2022-24
reference_id mfsa2022-24
reference_type
scores
0
value high
scoring_system generic_textual
scoring_elements
url https://www.mozilla.org/en-US/security/advisories/mfsa2022-24
2
reference_url https://www.mozilla.org/security/advisories/mfsa2022-24/
reference_id mfsa2022-24
reference_type
scores
0
value 8.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-04-15T17:43:52Z/
url https://www.mozilla.org/security/advisories/mfsa2022-24/
3
reference_url https://bugzilla.mozilla.org/show_bug.cgi?id=1335845
reference_id show_bug.cgi?id=1335845
reference_type
scores
0
value 8.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-04-15T17:43:52Z/
url https://bugzilla.mozilla.org/show_bug.cgi?id=1335845
4
reference_url https://usn.ubuntu.com/5504-1/
reference_id USN-5504-1
reference_type
scores
url https://usn.ubuntu.com/5504-1/
fixed_packages
0
url pkg:apk/alpine/firefox@102.0-r0?arch=loongarch64&distroversion=v3.21&reponame=community
purl pkg:apk/alpine/firefox@102.0-r0?arch=loongarch64&distroversion=v3.21&reponame=community
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:apk/alpine/firefox@102.0-r0%3Farch=loongarch64&distroversion=v3.21&reponame=community
aliases CVE-2022-34483
risk_score null
exploitability null
weighted_severity null
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-vbs8-en1z-wkha
Risk_scorenull
Resource_urlhttp://public2.vulnerablecode.io/packages/pkg:apk/alpine/firefox@102.0-r0%3Farch=loongarch64&distroversion=v3.21&reponame=community